Topic "Unable to use FTPS (TLS explicit encryption)"

Author Message
mhermann

Guest


Hello

I'm unable to use "TLS explicit encryption" by connection to an FTP server. WinSCP connects to the server, but then it's obviously unable to get the directory: "Could not retrieve directory listing". I get the same message for "SSL explicit encryption".

I've already tried passive resp. active mode and "Force IP address with passive mode connections". Then I've tried it with WinSCP version 4.3.5 and 5.0.2beta on two different PC's. And I've read https://winscp.net/eng/docs/message_error_listing_directory

Nothing helps Crying or Very sad

Only Cyberduck (https://cyberduck.io/) seems to works!

Here's the WinSCP log:
. 2011-10-10 18:42:45.374 --------------------------------------------------------------------------
. 2011-10-10 18:42:45.374 WinSCP Version 5.0.2 (Build 1456) (OS 6.1.7601 Service Pack 1)
. 2011-10-10 18:42:45.374 Configuration: HKEY_CURRENT_USER\Software\Martin Prikryl\WinSCP 2\
. 2011-10-10 18:42:45.374 Local account: ABC\XYZ
. 2011-10-10 18:42:45.374 Login time: Montag, 10. Oktober 2011 18:42:45
. 2011-10-10 18:42:45.374 --------------------------------------------------------------------------
. 2011-10-10 18:42:45.374 Session name: XYZ (Stored session)
. 2011-10-10 18:42:45.374 Host name: login.xyz.ch (Port: 21)
. 2011-10-10 18:42:45.374 User name: xyz (Password: No, Key file: No)
. 2011-10-10 18:42:45.374 Tunnel: No
. 2011-10-10 18:42:45.374 Transfer Protocol: FTP
. 2011-10-10 18:42:45.374 Ping type: C, Ping interval: 30 sec; Timeout: 15 sec
. 2011-10-10 18:42:45.374 Proxy: none
. 2011-10-10 18:42:45.374 FTP: FTPS: Explicit TLS; Passive: Yes [Force IP: No]
. 2011-10-10 18:42:45.374 Local directory: default, Remote directory: home, Update: No, Cache: Yes
. 2011-10-10 18:42:45.374 Cache directory changes: Yes, Permanent: Yes
. 2011-10-10 18:42:45.374 DST mode: 1
. 2011-10-10 18:42:45.374 --------------------------------------------------------------------------
. 2011-10-10 18:42:45.389 Password prompt (no password provided or last login attempt failed)
. 2011-10-10 18:42:47.979 Connecting to login.xyz.ch ...
. 2011-10-10 18:42:47.995 m_pSslLayer changed state from 0 to 1
. 2011-10-10 18:42:47.995 m_pSslLayer changed state from 1 to 2
. 2011-10-10 18:42:48.088 m_pSslLayer changed state from 2 to 4
. 2011-10-10 18:42:48.104 Connected with login.xyz.ch, negotiating SSL connection...
< 2011-10-10 18:42:48.119 220 FTP Server ready.
> 2011-10-10 18:42:48.119 AUTH TLS
< 2011-10-10 18:42:48.151 234 AUTH TLS successful
. 2011-10-10 18:42:48.182 SSL_connect: SSLv3 read server hello A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 read server certificate A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 read server key exchange A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 read server certificate request A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 read server done A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 write client certificate A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 write client key exchange A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 write change cipher spec A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 write finished A
. 2011-10-10 18:42:48.369 SSL_connect: SSLv3 flush data
. 2011-10-10 18:42:48.494 SSL_connect: SSLv3 read finished A
. 2011-10-10 18:42:48.494 Using TLSv1, cipher TLSv1/SSLv3: DHE-RSA-AES256-SHA, 1024 bit RSA
. 2011-10-10 18:42:48.494 SSL connection established. Waiting for welcome message...
> 2011-10-10 18:42:48.494 USER xyz
< 2011-10-10 18:42:48.525 331 Password required for xyz
> 2011-10-10 18:42:48.525 PASS ********
< 2011-10-10 18:42:48.572 230 User xyz logged in
> 2011-10-10 18:42:48.572 SYST
< 2011-10-10 18:42:48.603 215 UNIX Type: L8
> 2011-10-10 18:42:48.603 FEAT
< 2011-10-10 18:42:48.697 211-Features:
< 2011-10-10 18:42:48.697 MDTM
< 2011-10-10 18:42:48.697 AUTH TLS
< 2011-10-10 18:42:48.697 PBSZ
< 2011-10-10 18:42:48.697 PROT
< 2011-10-10 18:42:48.697 REST STREAM
< 2011-10-10 18:42:48.697 SIZE
< 2011-10-10 18:42:48.931 211 End
> 2011-10-10 18:42:48.931 PBSZ 0
< 2011-10-10 18:42:48.962 200 PBSZ 0 successful
> 2011-10-10 18:42:48.962 PROT P
< 2011-10-10 18:42:48.993 200 Protection set to Private
. 2011-10-10 18:42:48.993 Connected
. 2011-10-10 18:42:48.993 Got reply 1 to the command 1
. 2011-10-10 18:42:48.993 --------------------------------------------------------------------------
. 2011-10-10 18:42:48.993 Using FTP protocol.
. 2011-10-10 18:42:48.993 Doing startup conversation with host.
> 2011-10-10 18:42:49.009 PWD
< 2011-10-10 18:42:49.040 257 "/" is the current directory
. 2011-10-10 18:42:49.040 Got reply 1 to the command 16
. 2011-10-10 18:42:49.040 Getting current directory name.
. 2011-10-10 18:42:49.055 Retrieving directory listing...
> 2011-10-10 18:42:49.055 TYPE A
< 2011-10-10 18:42:49.071 200 Type set to A
> 2011-10-10 18:42:49.071 PASV
< 2011-10-10 18:42:49.102 227 Entering Passive Mode (176,9,36,19,174,123).
> 2011-10-10 18:42:49.102 LIST -a
. 2011-10-10 18:43:04.655 Timeout detected.
. 2011-10-10 18:43:04.655 Could not retrieve directory listing
. 2011-10-10 18:43:04.655 Got reply 1004 to the command 2
* 2011-10-10 18:43:04.655 (ESshFatal) Lost connection.
* 2011-10-10 18:43:04.655 Timeout detected.
* 2011-10-10 18:43:04.655 Could not retrieve directory listing
* 2011-10-10 18:43:04.655 Entering Passive Mode (176,9,36,19,174,123).
* 2011-10-10 18:43:04.655 Error listing directory '/'.

Can someone help me?

Thank you.
Patrick
Advertisements
martin
[View user's profile]
Site Admin
Joined: 2002-12-10
Posts: 25034
Location: Prague, Czechia
Can you send me an email, so I can send you back a debug version of WinSCP to track the problem? Please include link back to this topic in your email. Also note in this topic that you have sent the email. Thanks.

You will find my address (if you log in) in my forum profile.
_________________
Martin Prikryl
mhermann
[View user's profile]

Joined: 2011-10-11
Posts: 1
Hello Martin. I've just sent you an email. Thank you for sending me a debug version of WinSCP.
Guest




Additionally, here's the log while connecting to the same server with CyberDuck. It's not so informative as the one generated by WinSCP but maybe it helps you anyway...

Code:
220 FTP Server ready.
AUTH TLS
234 AUTH TLS successful
USER xyz
331 Password required for xyz
PASS ********
230 User xyz logged in
PBSZ 0
200 PBSZ 0 successful
PROT P
200 Protection set to Private
FEAT
211-Features:
 MDTM
 AUTH TLS
 PBSZ
 PROT
 REST STREAM
 SIZE
211 End
PWD
257 "/" is the current directory
NOOP
200 NOOP command successful
SYST
215 UNIX Type: L8
STAT /
211-Status of /:
Advertisements

You can post new topics in this forum






Search Site

What is WinSCP?

It is award-winning SFTP client, SCP client, FTPS client and FTP client integrated into one software program for file transfer to FTP server or secure SFTP server. [More]

And it's free!

Donate

About donations

$9   $19   $49   $99

About donations

Recommend

WinSCP Privacy Policy

WinSCP License